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SentinelOne & Cloudflare Joint Solution Brief 
Empowering Zero Trust Conditional Access 


Securing Access Beyond The Perimeter 


When applications and users left the walls of the enterprise perimeter, Joint Solution 


security teams had to make compromises on how to keep data safe. Highlights 

Relying on yesterday’s network-based controls (like VPNs and IP location 

restriction) for application access can increase attack surface, limit visibility, + Enforce device-aware 
and frustrate end users. To evolve, many enterprises are turning to Zero Trust access policies 


security frameworks. Where network-based controls facilitate a castle and 
moat model that enables risky lateral movement, Zero Trust policies require 
real-time identity and posture-driven checks each time users attempt to 
access protected resources. These policies keep sensitive data safe 

by ensuring it can only be accessed by verified users on trusted devices. + Simple configuration 


+ Prevent lateral movement 


+ Decisions at machine speed 


Joint Solution 


SentinelOne and Cloudflare work together to ensure that adopting Zero 
Trust Network Access is easy. Organizations integrate endpoint protection 
platforms like SentinelOne, add corporate identity providers and connect 
their applications (SaaS, cloud, or onpremises) to Cloudflare’s global edge 
network in minutes. With just a few clicks in the Cloudflare dashboard, 
administrators can apply default-deny, Zero Trust rules that restrict user 
access to sensitive applications based on device posture signals from 
SentinelOne Singularity XDR. 


How it Works 

SentinelOne provides Al-powered protection, detection co 
and response on the endpoint and provides valuable S cy 
context to Cloudflare to be used in conditional access | entity managemen Self-hosted 
decisions. Instead of a VPN, users connect to corporate L] TE: @ SEN apps 
resources through a client or a web browser. As requests — saad a 

are routed and accelerated through Cloudflare’s edge, User i) Sentinelone ‘dae 
they are evaluated against Zero Trust rules incorporating 

signals from SentinelOne, your identity providers, and © SaaS 
other context. Where RDP software, SMB file viewers, | | a | | Pps 
and other thick client programs used to require a VPN for 

private network connectivity, teams can now privately 

route any TCP traffic through Cloudflare’s network where Step 1 Step 2 Step 3 

it’s accelerated, verified, and filtered in a single pass, aP a e easannee 
facilitating improved performance and security. a alae a eer 


such as geolocation and certificate are 
also assessed. 
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Use Cases 


Prevent Malware Propagation 


Stop malware from spreading laterally through a corporate network. 
SentinelOne provides ongoing monitoring against malware and other device- 
based threats. Cloudflare verifies that SentinelOne is actively running and 
protecting a machine before allowing access to an application. Device 
posture checks contain malware to the endpoint and prevents it from moving 
laterally to cloud resources. 


Protect Production Environments 


Protect remote SSH access in a production environment. Developers can 
render SSH clients within a Zero Trust browser running on Cloudflare’s 
edge, and access production environments without a VPN, clunky client 
software, or long-lived certificates. A device posture policy that requires 
SentinelOne is enforced at login and throughout the session, ensuring that 
no infected devices can access the production environment. A secure 
context-driven access policy provides a more streamlined and intuitive 
workflow for developers. 


Reduce Impact of Credential Compromise 


Mitigate the impact of credential theft. An attacker uses an employee’s 
stolen credentials to attempt to access a protected staging site. The attacker 
would still be blocked even with valid credentials because they do not have 
SentinelOne running on their device. This approach reduces reliance on 
passwords alone as a security signal and provides enriched detection and 
policy enforcement. 


Conclusion 


The combination of SentinelOne and Cloudflare makes it easier for 
organizations to adopt Zero Trust and reduce the potential impact 
of security incidents. 


Key Features 
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Enforce device-aware 
access policies 


Ensure that only protected 
devices connect to your resources. 
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Prevent lateral movement 


Prevent infected or vulnerable 
devices from accessing 
sensitive data. 
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Decisions at machine speed 


Cloudflare’s lightning-fast network 
brings enforcement decisions 
within 100ms of 99% of the world’s 
Internetconnected population. 
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Simple configuration 


Add device posture signal from 
SentinelOne into application 
access policies with a few clicks. 


Innovative. Trusted. Recognized. 


Gartner 


A Leader in the 2021 Magic Quadrant 
for Endpoint Protection Platforms 
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Record Breaking ATT&CK Evaluation 
e No missed detections. 100% visibility 


Highest Ranked in all Critical 
Capabilities Report Use Cases 


e Most Analytic Detections 2 years running 
e Zero Delays. Zero Config Changes 


About SentinelOne About Cloudflare 
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98% of Gartner Peer Insights™ 


Voice of the Customer Reviewers 
recommend SentinelOne 


/ 180 27001 


() “ee 


PCI DSS Attestation 
HIPAA Attestation 


FedRAMP 
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More Capability. Less Complexity. SentinelOne is pioneering the future of cybersecurity with 
autonomous, distributed endpoint intelligence aimed at simplifying the security stack without 
forgoing enterprise capabilities. Our technology is designed to scale people with automation 
and frictionless threat resolution. Are you ready? 


sentinelone.com | sales@sentinelone.com | +1855 868 3733 


Cloudflare is the security, performance, and reliability company on a mission to help build a 
better Internet. Today it runs one of the world’s largest networks that powers approximately 25 
million Internet properties, with approximately 17% of the Fortune 1000 companies using at least 
one Cloudflare product. 


cloudflare.com | spx-partnerships@cloudflare.com | + 1888 99 FLARE 
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